curl: Add patch to fix CVE-2022-43551 - linux/poky.git - Mirror of git.yoctoproject.org/poky

diff options

author	Ranjitsinh Rathod <ranjitsinh.rathod@kpit.com>	2022-12-22 11:07:08 +0530
committer	Richard Purdie <richard.purdie@linuxfoundation.org>	2023-01-06 17:33:23 +0000
commit	b6879ce896e1be225a2389871b03274930bb7303 (patch)
tree	820cc20fc692434f1b573dc23c016bce02ef7924 /scripts/lib/devtool/standard.py
parent	18da62e637b8487a07fade71db847db120de8d6b (diff)
download	poky-b6879ce896e1be225a2389871b03274930bb7303.tar.gz

curl: Add patch to fix CVE-2022-43551

Add patch to fix the security issue "curl's HSTS check could be bypassed to trick it to keep using HTTP. Using its HSTS support, curl can be instructed to use HTTPS instead of using an insecure clear-text HTTP step even when HTTP is provided in the URL." as per below link Link: https://curl.se/docs/CVE-2022-43551.html (From OE-Core rev: baa18f2cf107af7a5e1c7b7befad46e6c48f4222) Signed-off-by: Ranjitsinh Rathod <ranjitsinh.rathod@kpit.com> Signed-off-by: Ranjitsinh Rathod <ranjitsinhrathod1991@gmail.com> Signed-off-by: Steve Sakoman <steve@sakoman.com> Signed-off-by: Richard Purdie <richard.purdie@linuxfoundation.org>

Diffstat (limited to 'scripts/lib/devtool/standard.py')

0 files changed, 0 insertions, 0 deletions


context:
space:
mode: